ENISA

The European Union has marked a significant advancement in its cybersecurity infrastructure with the activation of the European Vulnerability Database (EUVD), managed by ENISA under the NIS2 Directive framework. This centralized platform consolidates vulnerability intelligence from multiple authoritative sources, including EU CSIRTs, MITRE’s CVE Program, and CISA’s KEV Catalogue. The EUVD provides interactive dashboards for analyzing vulnerabilities by severity, exploitation status, and coordination levels, while supporting machine-readable formats for automated security workflows. With public accessibility for stakeholders ranging from technology vendors to individual practitioners, the database complements the forthcoming Single Reporting Platform under the Cyber Resilience Act. As a CVE Numbering Authority since January 2024, ENISA strengthens the EU’s self-sufficiency in vulnerability management, advancing technological sovereignty within the region. The platform will continue evolving throughout 2025, establishing a progressive model for vulnerability data management characterized by openness, structure, and collaboration between public and private sectors.